EU warns of 5G cybersecurity risks, stops short of singling out China

Advertisement

Business

EU warns of 5G cybersecurity risks, stops short of singling out China

The European Union warned on Wednesday of the risk of increased cyber attacks by state-backed entities but refrained from singling out China and its telecoms equipment market leader Huawei Technologies as threats.

FILE PHOTO: A logo of the upcoming mobile standard 5G is pictured at the Hanover trade fair, in Hanover, Germany March 31, 2019. REUTERS/Fabian Bimmer/File Photo

10 Oct 2019 12:21AM

Share this content

Bookmark

BRUSSELS: The European Union warned on Wednesday of the risk of increased cyber attacks by state-backed entities but refrained from singling out China and its telecoms equipment market leader Huawei Technologies as threats.

The comments came in a report prepared by EU member states on cybersecurity risks to next-generation 5G mobile networks seen as crucial to the bloc's competitiveness in an increasingly networked world.

Advertisement

Advertisement

The authors chose to ignore calls by the United States to ban Huawei's equipment, drawing a welcome from the Shenzen-based company after it faced U.S. accusations that its gear could be used by China for spying.

"Among the various potential actors, non-EU states or state-backed are considered as the most serious ones and the most likely to target 5G networks," the European Commission and Finland, which currently holds the rotating EU presidency, said in a joint statement.

"In this context of increased exposure to attacks facilitated by suppliers, the risk profile of individual suppliers will become particularly important, including the likelihood of the supplier being subject to interference from a non-EU country," they said.

Huawei, which competes with Finland's Nokia and Sweden's Ericsson, said it stood ready to work with its European partners on 5G network security. It has always denied its equipment can be used for spying.

Advertisement

Advertisement

"This exercise is an important step towards developing a common approach to cybersecurity and delivering safe networks for the 5G era," a Huawei spokesman said.

"We are pleased to note that the EU delivered on its commitment to take an evidence-based approach, thoroughly analysing risks rather than targeting specific countries or actors."

Tom Ridge, a former U.S. secretary of homeland security, took a different view of the report. He said Huawei's close ties to the Chinese government meant it would have to comply with legislation requiring it to assist with intelligence gathering.

"If countries needed more reason to implement stricter security measures to protect 5G networks, this comprehensive risk assessment is it," said Ridge, a member of the advisory board of Global Cyber Policy Watch.

Fifth-generation networks will hook up billions of devices, sensors and cameras in 'smart' cities, homes and offices. With that ubiquity, security becomes an even more pressing need than in existing networks.

“5G security requires that networks are built leveraging the most advanced security features, selecting vendors that are trustworthy and transparent," a Nokia spokesperson said, adding that the company was the only global vendor capable of providing all the building blocks for secure 5G networks.

EU members have differed on how to treat Huawei, with Britain, a close U.S. ally, leaning towards excluding it from critical parts of networks. Germany is meanwhile creating a level playing field in which all 5G vendors should prove they are trustworthy.

OVER-DEPENDENCE

The report warned against over-dependence on one telecoms equipment supplier.

"A major dependency on a single supplier increases the exposure to a potential supply interruption, resulting for instance from a commercial failure, and its consequences," it said.

European network operators, including Germany's Deutsche Telekom typically have multi-vendor strategies that they say reduce the security risks that might arise from relying too heavily on a single provider.